npm

Severity: high

Path Traversal

knightjs

Overview

All versions of knightjs are vulnerable to Path Traversal.

This vulnerability allows an attacker to read content of arbitrary files on the server due to lack of input validation.

Remediation

As there is currently no fix for this module we recommend not using this module in production environments.

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory Published
    Dec 7th, 2018
  2. reported

    Reported by Abdillah Muhamad
    Dec 6th, 2018